Data Classification Levels

Sensitivity/Criticality Level

Automated information sensitivity/ criticality level	EXPLANATION Automated information, automated applications, or computer systems, the inaccuracy, alteration, disclosure, or unavailability of which:
3	Would have an IRREPARABLE impact, permanently violating the integrity of UH missions, functions, image, and reputation. The catastrophic result would not be able to be repaired or set right again; or Would result in the loss of MAJOR tangible asset(s) or resource(s).
2	Would have an ADVERSE impact actively opposed to UH missions, functions, image, and reputation. The impact would place UH at a significant disadvantage; or Would result in the loss of SIGNIFICANT tangible asset(s) or resource(s).
1	Would have a MINIMAL impact on UH missions, functions, image, and reputation. A breach of this sensitivity/criticality level would result in the least possible significant unfavorable condition with a negative outcome; or Could result in the loss of SOME tangible asset or resource.
0	Would have a NEGLIGIBLE effect on UH missions, functions, image, and reputation. The impact, while unfortunate, would be insignificant and almost unworthy of consideration; or Probably would not result in the loss of a tangible asset or resource.
Level 0 applications are not sensitive. Organizations may therefore follow their own plans for level 0 applications as identified in each of the requirements. However, all level 0 organizational plans will have the concurrence of the organization's management.

University of Houston